Hi ich könnte wirklich eure hilfe gebrauchen....
also mein problem sieht wie folgt aus, ich habe riesen mist gebaut und ein Trojaner gedownloadet... =(
was das genau das für ein Trojaner ist, weiß ich nicht genau aber ich kriege oft meldungen von....
Windows Version installer 2011-2014 und Windows 7 PC Repair, optimizer öffnet sich ab und zu,
werbung wird immer angezeigt, und der browser schließt sich nach der zeit.

Ich muss erwähnen das ich wenig ahnung davon habe, also müsste man es mir schritt für schritt erklären.
Hier habe ich ein paar bilder, was sich immerzu öffnen tut.







hxxp://img4web.com/view/VWUVY7
hxxp://img4web.com/view/Q3L623
hxxp://img4web.com/view/VCT99E
hxxp://img4web.com/view/WL8HWL
hxxp://img4web.com/view/NNYP5N

Hi,

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

• Starte jetzt FRST.
• Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
• Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
• Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

FRST Logfile:

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:08-08-2015 01
durchgeführt von West (Administrator) auf WEST-PC (09-08-2015 11:53:19)
Gestartet von C:\Users\West\Downloads
Geladene Profile: West (Verfügbare Profile: West)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Opera)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Abengine) C:\Program Files (x86)\FastSearch\acengine.exe
() C:\Windows\SysWOW64\ASGT.exe
() C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
() C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\hnst3AF2.tmp
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
() C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\jnsj211A.tmp
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(PhraseProfessor) C:\Program Files (x86)\PhraseProfessor_1.10.0.21\Service\ppsvc.exe
(Search Module Ltd.) C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ShopperPro) C:\Program Files\Common Files\ShopperPro\spbiu.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(ObjectB) C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6.exe
(Webby) C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-6.exe
(Webar) C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-6.exe
(Webar) C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6.exe
(Webby) C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6.exe
(ObjectB) C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-6.exe
(Webar) C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-10.exe
() C:\ProgramData\Eomelrieohan\1.0.4.1\aweuvwlo.exe
(Goobzo) C:\Program Files (x86)\YTDownloader\BrowserHelper.exe
() C:\Program Files (x86)\Optimizer Pro 3.99\OptProSmartScan.exe
() C:\Program Files (x86)\Optimizer Pro 3.99\OptProReminder.exe
() C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\knse7A77.tmp
(Ratio Applications) C:\ProgramData\CZBPnMItUC\xcQyaOMXbkn.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Users\West\AppData\Local\gmsd_de_005010055\upgmsd_de_005010055.exe
() C:\ProgramData\Eomelrieohan\1.0.4.1\aweuvwlo.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Akamai Technologies, Inc.) C:\Users\West\AppData\Local\Akamai\netsession_win.exe
(YTDownloader) C:\Program Files (x86)\YTDownloader\YTDownloader.exe
() C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(SoftBrain Technologies Ltd.) C:\Users\West\AppData\Local\SmartWeb\SmartWebHelper.exe
() C:\Program Files (x86)\gmsd_de_005010055\gmsd_de_005010055.exe
(SoftBrain Technologies Ltd.) C:\Users\West\AppData\Local\SmartWeb\SmartWebApp.exe
(Akamai Technologies, Inc.) C:\Users\West\AppData\Local\Akamai\netsession_win.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\31.0.1889.106\opera.exe


==================== Registry (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2754704 2015-06-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-06-08] (Oracle Corporation)
HKLM-x32\...\Run: [gmsd_de_002020054] => [X]
HKLM-x32\...\Run: [SmartWeb] => C:\Users\West\AppData\Local\SmartWeb\SmartWebHelper.exe [270368 2015-02-17] (SoftBrain Technologies Ltd.)
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988528 2015-08-08] (YTDownloader)
HKLM-x32\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.exe [3225088 2015-08-08] ()
HKLM-x32\...\Run: [gmsd_de_005010055] => C:\Program Files (x86)\gmsd_de_005010055\gmsd_de_005010055.exe [3985040 2015-08-08] ()
HKLM-x32\...\RunOnce: [upgmsd_de_005010055.exe] => C:\Users\West\AppData\Local\gmsd_de_005010055\upgmsd_de_005010055.exe [3345040 2015-08-08] ()
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2895552 2015-07-24] (Valve Corporation)
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53282944 2015-06-29] (Skype Technologies S.A.)
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [Akamai NetSession Interface] => C:\Users\West\AppData\Local\Akamai\netsession_win.exe [4673432 2014-10-29] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988528 2015-08-08] (YTDownloader)
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [SPDriver] => C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.exe [3225088 2015-08-08] ()
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro 3.99\OptProLauncher.exe [148112 2015-07-31] ()
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Run: [DeskBar] => C:\Users\West\AppData\Local\DeskBar\dblaunch.exe [239104 2015-08-09] ()
AppInit_DLLs-x32: c:\progra~3\securi~1\securi~1.dll => "c:\progra~3\securi~1\securi~1.dll" Datei nicht gefunden
Startup: C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\SmartWeb.lnk [2015-08-09]
ShortcutTarget: SmartWeb.lnk -> C:\Users\West\AppData\Local\SmartWeb\SmartWebHelper.exe (SoftBrain Technologies Ltd.)
CHR HKLM\SOFTWARE\Policies\Google: Richtlinienbeschränkung <======= ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt..)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.istartsurf.com/?type=hp&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.istartsurf.com/?type=hp&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1439059230&z=3f0b1eaca4dacf6e9c48c67g6zecatfe1w7tagdc4q&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www-searching.com/?pid=s&s=F88ztutdk0003,d54c66d4-3a80-4fc7-9883-5ef0312ccb9a&vp=ch&prd=set
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.istartsurf.com/?type=hp&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4
HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1439059230&z=3f0b1eaca4dacf6e9c48c67g6zecatfe1w7tagdc4q&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKLM -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL = hxxp://www.mystartsearch.com/web/?type=ds&ts=1439059199&z=0696241fb3ef9ac5cc80500g9z6c9t2e1wbtbg6eew&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www-searching.com/search.aspx?s=F88ztutdk0003,d54c66d4-3a80-4fc7-9883-5ef0312ccb9a&site=shyosie&prd=set&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&ts=1439059254&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&ts=1439059254&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www-searching.com/search.aspx?s=F88ztutdk0003,d54c66d4-3a80-4fc7-9883-5ef0312ccb9a&site=shyosie&prd=set&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {A8CCFA17-0A8B-460F-9C05-E5CA4AC172C0} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&ts=1439059254&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {c9ab6446-7efc-47fe-966c-dc54324eff9f} URL = hxxp://www.mystartsearch.com/web/?type=dspp&ts=1439059230&z=3f0b1eaca4dacf6e9c48c67g6zecatfe1w7tagdc4q&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {CC213CB2-471A-483F-AFDF-C16A43947B30} URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://www.mystartsearch.com/web/?utm_source=b&utm_medium=ima&utm_campaign=install_ie&utm_content=ds&from=ima&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4&ts=1439059254&type=default&q={searchTerms}
BHO: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro64.dll [2015-08-08] (Goobzo Ltd.)
BHO-x32: Shopper Pro -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> C:\ProgramData\ShopperPro\ShopperPro.dll [2015-08-08] (Goobzo Ltd.)
Winsock: Catalog9 01 C:\Windows\SysWOW64\acengine.dll [299160 2015-08-09] (Abengine)
Winsock: Catalog9 02 C:\Windows\SysWOW64\acengine.dll [299160 2015-08-09] (Abengine)
Winsock: Catalog9 03 C:\Windows\SysWOW64\acengine.dll [299160 2015-08-09] (Abengine)
Winsock: Catalog9 04 C:\Windows\SysWOW64\acengine.dll [299160 2015-08-09] (Abengine)
Winsock: Catalog9 15 C:\Windows\SysWOW64\acengine.dll [299160 2015-08-09] (Abengine)
Winsock: Catalog9-x64 01 C:\Windows\system32\acengine64.dll [351072 2015-08-09] (Abengine)
Winsock: Catalog9-x64 02 C:\Windows\system32\acengine64.dll [351072 2015-08-09] (Abengine)
Winsock: Catalog9-x64 03 C:\Windows\system32\acengine64.dll [351072 2015-08-09] (Abengine)
Winsock: Catalog9-x64 04 C:\Windows\system32\acengine64.dll [351072 2015-08-09] (Abengine)
Winsock: Catalog9-x64 15 C:\Windows\system32\acengine64.dll [351072 2015-08-09] (Abengine)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{3AE457ED-2821-487E-9A40-0FB754C2FE74}: [NameServer] 52.18.92.32,8.8.8.8
Tcpip\..\Interfaces\{3AE457ED-2821-487E-9A40-0FB754C2FE74}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{846ee342-7039-11de-9d20-806e6f6e6963}: [NameServer] 52.18.92.32,8.8.8.8
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-07-20] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files (x86)\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-07-20] (Oracle Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-06-16] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-02-04] (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-08-09] (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npglobalupdateUpdate4.dll [2015-08-09] (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-09] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.1\npGoogleUpdate3.dll [2015-08-09] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2013-09-05] (Adobe Systems Inc.)

Chrome: 
=======
CHR Profile: C:\Users\West\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Docs) - C:\Users\West\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-08-09]
CHR Extension: (Google Drive) - C:\Users\West\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-08-09]
CHR Extension: (YouTube) - C:\Users\West\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-08-09]
CHR Extension: (Google Search) - C:\Users\West\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-08-09]
CHR Extension: (Gmail) - C:\Users\West\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-08-09]
CHR HKLM\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - https://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [jlcgehabolcakkjhgmgpkagpolbjlhfa] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ihokndmjeombjojnfkmapfnjeghjohim] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - https://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.istartsurf.com/?type=sc&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4

Opera: 
=======
OPR Extension: (Ge-ForcePlus v3) - C:\Users\West\AppData\Roaming\Opera Software\Opera Stable\Extensions\jhongheibdpfhdpfccheljfcabgliidh [2015-08-09]
OPR Extension: (Object Browser) - C:\Users\West\AppData\Roaming\Opera Software\Opera Stable\Extensions\kfgaibfbmkjgmimhbbaikfnpkkjkpoan [2015-08-09]
OPR Extension: (Adblock Plus) - C:\Users\West\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2015-08-09]
StartMenuInternet: (HKLM) OperaStable - C:\Program Files (x86)\Opera\Launcher.exe hxxp://www.istartsurf.com/?type=sc&ts=1439076076&z=7f089aa2cc8745e4581544ag7zec8t1e5m4q5e2ebg&from=face&uid=ST3500418AS_5VM3NQC4XXXX5VM3NQC4

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 285bff21; c:\Program Files (x86)\CutterProc\CutterProc.dll [2604544 2015-08-09] () [Datei ist nicht signiert]
R2 acengine; C:\Program Files (x86)\FastSearch\acengine.exe [1838752 2015-08-06] (Abengine) [Datei ist nicht signiert]
R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1141248 2015-06-08] ()
R2 BrsHelper; C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [112560 2015-08-08] ()
R2 c31ed948; c:\Program Files (x86)\Optimizer Pro 3.99\OptProMon.dll [2683536 2015-08-09] () <==== ACHTUNG
R2 comyninu; C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\hnst3AF2.tmp [161792 2015-08-08] () [Datei ist nicht signiert]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-06-24] (NVIDIA Corporation)
S2 globalUpdate1d0d2239fb97318; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-08-09] (globalUpdate) [Datei ist nicht signiert]
S3 globalUpdatem1d0d223a0353aa6; C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [68608 2015-08-09] (globalUpdate) [Datei ist nicht signiert]
R2 hyverumu; C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\jnsj211A.tmp [209920 2015-08-08] () [Datei ist nicht signiert]
S4 IHProtect Service; C:\Program Files (x86)\MiuiTab\ProtectService.exe [125112 2015-08-04] () [Datei ist nicht signiert]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1868432 2015-06-25] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [23007560 2015-06-24] (NVIDIA Corporation)
R2 ppsvc_1.10.0.21; C:\Program Files (x86)\PhraseProfessor_1.10.0.21\Service\ppsvc.exe [300128 2015-07-28] (PhraseProfessor)
R2 SMUpd; C:\Program Files\Common Files\Goobzo\GBUpdate\smu.exe [2866176 2015-08-08] (Search Module Ltd.) [Datei ist nicht signiert]
R2 SPBIUpd; C:\Program Files\Common Files\ShopperPro\spbiu.exe [2346416 2015-08-08] (ShopperPro)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-01] (TeamViewer GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 wunugohe; C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\knse7A77.tmp [747008 2015-08-09] () [Datei ist nicht signiert]
R2 xcQyaOMXbkn; C:\ProgramData\CZBPnMItUC\xcQyaOMXbkn.exe [2731488 2015-08-08] (Ratio Applications)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19784 2015-06-24] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [46768 2015-05-19] (NVIDIA Corporation)
R1 ppfd_vt_1_10_0_21; C:\Windows\System32\drivers\ppfd_vt_1_10_0_21.sys [61328 2015-07-28] (PhraseProfessor)
R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58528 2015-08-08] (YTDownloader)
R3 SMUpdd; C:\Program Files\Common Files\Goobzo\GBUpdate\smw.sys [41632 2015-08-08] ()
R3 SPBIUpdd; C:\Program Files\Common Files\ShopperPro\spbiw.sys [41624 2015-08-08] ()
R2 SPDRIVER_1.42.1.2267; C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.sys [52384 2015-08-08] ()
U3 Winsock; kein ImagePath
R1 {6379a279-6da5-435f-86bf-c309005e8359}Gw64; C:\Windows\System32\drivers\{6379a279-6da5-435f-86bf-c309005e8359}Gw64.sys [48776 2015-08-08] (StdLib)
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
R4 IOMap; \??\C:\Windows\system32\drivers\IOMap64.sys [X]
S1 wsfd_vt_1_10_0_20; system32\drivers\wsfd_vt_1_10_0_20.sys [X]
S3 xhunter1; \??\C:\Windows\xhunter1.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-09 11:53 - 2015-08-09 11:53 - 00024981 _____ C:\Users\West\Downloads\FRST.txt
2015-08-09 11:52 - 2015-08-09 11:53 - 00000000 ____D C:\FRST
2015-08-09 11:51 - 2015-08-09 11:52 - 02169856 _____ (Farbar) C:\Users\West\Downloads\FRST64 (1).exe
2015-08-09 11:51 - 2015-08-09 11:51 - 02169856 _____ (Farbar) C:\Users\West\Downloads\FRST64.exe
2015-08-09 11:44 - 2015-08-09 11:44 - 00000000 ____D C:\ProgramData\Browser
2015-08-09 11:38 - 2015-08-09 11:38 - 00001425 _____ C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-08-09 01:34 - 2015-08-09 11:38 - 00003790 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7.job
2015-08-09 01:34 - 2015-08-09 11:38 - 00003446 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6.job
2015-08-09 01:34 - 2015-08-09 11:38 - 00002762 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5_user.job
2015-08-09 01:34 - 2015-08-09 11:38 - 00002762 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.job
2015-08-09 01:34 - 2015-08-09 01:34 - 00006820 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7
2015-08-09 01:34 - 2015-08-09 01:34 - 00006474 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6
2015-08-09 01:34 - 2015-08-09 01:34 - 00005792 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5
2015-08-09 01:33 - 2015-08-09 11:38 - 00006178 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-6.job
2015-08-09 01:33 - 2015-08-09 11:38 - 00005834 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-7.job
2015-08-09 01:33 - 2015-08-09 11:38 - 00005492 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-11.job
2015-08-09 01:33 - 2015-08-09 11:38 - 00002084 _____ C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-10_user.job
2015-08-09 01:33 - 2015-08-09 01:34 - 00000000 ____D C:\Program Files (x86)\Ge-Force
2015-08-09 01:33 - 2015-08-09 01:33 - 00009206 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-6
2015-08-09 01:33 - 2015-08-09 01:33 - 00008864 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-7
2015-08-09 01:33 - 2015-08-09 01:33 - 00008522 _____ C:\Windows\System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-11
2015-08-09 01:33 - 2015-08-09 01:33 - 00000000 ____D C:\Program Files (x86)\8e85682a-172d-40b1-bc2a-681d25d452c7
2015-08-09 01:32 - 2015-08-09 01:33 - 00000000 ____D C:\Users\West\AppData\Roaming\Optimizer Pro
2015-08-09 01:32 - 2015-08-09 01:32 - 00003248 _____ C:\Windows\System32\Tasks\Optimizer Pro Schedule
2015-08-09 01:32 - 2015-08-09 01:32 - 00000000 ____D C:\Users\West\Documents\Optimizer Pro
2015-08-09 01:30 - 2015-08-09 02:04 - 00001020 _____ C:\Users\West\Desktop\Neues Textdokument.txt
2015-08-09 01:28 - 2015-08-09 01:28 - 00004210 _____ C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Pending Update
2015-08-09 01:28 - 2015-08-09 01:28 - 00004200 _____ C:\Windows\System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Core
2015-08-09 01:28 - 2015-08-09 01:28 - 00000000 ____D C:\Program Files (x86)\PhraseProfessor_1.10.0.21
2015-08-09 01:27 - 2015-08-09 11:38 - 00000338 _____ C:\Windows\Tasks\Optscan.job
2015-08-09 01:27 - 2015-08-09 01:27 - 00004234 _____ C:\Windows\System32\Tasks\SMW_UpdateTask_Time_313838343431383736332d45372a5a506c41324a345741
2015-08-09 01:27 - 2015-08-09 01:27 - 00003836 _____ C:\Windows\System32\Tasks\Smp
2015-08-09 01:27 - 2015-08-09 01:27 - 00003248 _____ C:\Windows\System32\Tasks\Optscan
2015-08-09 01:27 - 2015-08-09 01:27 - 00001103 _____ C:\Users\West\Desktop\Optimizer Pro.lnk
2015-08-09 01:27 - 2015-08-09 01:27 - 00000000 ____D C:\Users\West\AppData\Local\DeskBar
2015-08-09 01:27 - 2015-08-09 01:27 - 00000000 ____D C:\ProgramData\SearchModule
2015-08-09 01:27 - 2015-08-09 01:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2015-08-09 01:27 - 2015-08-09 01:27 - 00000000 ____D C:\ProgramData\{04b9ce1a-dfed-852d-04b9-9ce1adfe386b}
2015-08-09 01:27 - 2015-08-09 01:27 - 00000000 ____D C:\Program Files (x86)\Optimizer Pro 3.99
2015-08-09 01:26 - 2015-08-09 11:38 - 00000376 _____ C:\Windows\Tasks\APSnotifierPP3.job
2015-08-09 01:26 - 2015-08-09 11:38 - 00000376 _____ C:\Windows\Tasks\APSnotifierPP2.job
2015-08-09 01:26 - 2015-08-09 01:49 - 00000378 _____ C:\Windows\Tasks\APSnotifierPP1.job
2015-08-09 01:26 - 2015-08-09 01:26 - 00003850 _____ C:\Windows\System32\Tasks\SMWUpd
2015-08-09 01:26 - 2015-08-09 01:26 - 00002826 _____ C:\Windows\System32\Tasks\APSnotifierPP1
2015-08-09 01:26 - 2015-08-09 01:26 - 00002824 _____ C:\Windows\System32\Tasks\APSnotifierPP3
2015-08-09 01:26 - 2015-08-09 01:26 - 00002824 _____ C:\Windows\System32\Tasks\APSnotifierPP2
2015-08-09 01:26 - 2015-08-09 01:26 - 00001049 _____ C:\Users\West\Desktop\AnyProtect.lnk
2015-08-09 01:26 - 2015-08-09 01:26 - 00000000 ____D C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AnyProtect PC Backup
2015-08-09 01:26 - 2015-08-09 01:26 - 00000000 ____D C:\Program Files\Common Files\Goobzo
2015-08-09 01:25 - 2015-08-09 01:25 - 00000000 ____D C:\Windows\SysWOW64\Flash
2015-08-09 01:24 - 2015-08-09 01:26 - 00000000 ____D C:\Program Files (x86)\AnyProtectEx
2015-08-09 01:24 - 2015-08-09 01:24 - 00613255 _____ (CMI Limited) C:\Users\West\AppData\Local\nss15CC.tmp
2015-08-09 01:24 - 2015-08-09 01:24 - 00000000 __SHD C:\Users\West\AppData\Roaming\AnyProtectEx
2015-08-09 01:23 - 2015-08-09 11:38 - 00003786 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7.job
2015-08-09 01:23 - 2015-08-09 11:38 - 00003442 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6.job
2015-08-09 01:23 - 2015-08-09 11:38 - 00002758 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5_user.job
2015-08-09 01:23 - 2015-08-09 11:38 - 00002758 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.job
2015-08-09 01:23 - 2015-08-09 11:38 - 00002430 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5_user.job
2015-08-09 01:23 - 2015-08-09 11:38 - 00002430 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5.job
2015-08-09 01:23 - 2015-08-09 01:23 - 00006816 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7
2015-08-09 01:23 - 2015-08-09 01:23 - 00006470 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6
2015-08-09 01:23 - 2015-08-09 01:23 - 00005788 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5
2015-08-09 01:23 - 2015-08-09 01:23 - 00005460 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5
2015-08-09 01:22 - 2015-08-09 11:41 - 00000000 ____D C:\Users\West\AppData\Local\gmsd_de_005010055
2015-08-09 01:22 - 2015-08-09 11:38 - 00006174 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-6.job
2015-08-09 01:22 - 2015-08-09 11:38 - 00005830 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-7.job
2015-08-09 01:22 - 2015-08-09 11:38 - 00005502 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-7.job
2015-08-09 01:22 - 2015-08-09 11:38 - 00005502 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-6.job
2015-08-09 01:22 - 2015-08-09 11:38 - 00003458 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7.job
2015-08-09 01:22 - 2015-08-09 11:38 - 00003122 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6.job
2015-08-09 01:22 - 2015-08-09 01:33 - 00000000 ____D C:\Program Files (x86)\7820b0eb-3626-4620-9e3a-dab3daac0de7
2015-08-09 01:22 - 2015-08-09 01:23 - 00006150 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6
2015-08-09 01:22 - 2015-08-09 01:22 - 00009202 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-6
2015-08-09 01:22 - 2015-08-09 01:22 - 00008860 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-7
2015-08-09 01:22 - 2015-08-09 01:22 - 00008532 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-7
2015-08-09 01:22 - 2015-08-09 01:22 - 00008530 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-6
2015-08-09 01:22 - 2015-08-09 01:22 - 00006488 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7
2015-08-09 01:22 - 2015-08-09 01:22 - 00000000 ____D C:\Program Files (x86)\gmsd_de_005010055
2015-08-09 01:22 - 2015-08-09 01:22 - 00000000 ____D C:\Program Files (x86)\ee63cdc6-5f91-44d3-a3dd-8241c1189391
2015-08-09 01:21 - 2015-08-09 11:38 - 00005488 _____ C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-11.job
2015-08-09 01:21 - 2015-08-09 11:38 - 00005168 _____ C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-11.job
2015-08-09 01:21 - 2015-08-09 11:37 - 00000000 ____D C:\Program Files\Common Files\ShopperPro
2015-08-09 01:21 - 2015-08-09 01:30 - 00000000 ____D C:\Users\West\AppData\Local\BrowserHelper
2015-08-09 01:21 - 2015-08-09 01:28 - 00003718 _____ C:\Windows\System32\Tasks\SMupdate1
2015-08-09 01:21 - 2015-08-09 01:27 - 00004504 _____ C:\Windows\System32\Tasks\ShopperPro
2015-08-09 01:21 - 2015-08-09 01:27 - 00004228 _____ C:\Windows\System32\Tasks\SPBIW_UpdateTask_Time_313838343431383736332d45372a5a506c41324a345741
2015-08-09 01:21 - 2015-08-09 01:27 - 00003900 _____ C:\Windows\System32\Tasks\YTDownloaderUpd
2015-08-09 01:21 - 2015-08-09 01:27 - 00003578 _____ C:\Windows\System32\Tasks\YTDownloader
2015-08-09 01:21 - 2015-08-09 01:27 - 00001953 _____ C:\Users\West\Desktop\YTDownloader.lnk
2015-08-09 01:21 - 2015-08-09 01:23 - 00000000 ____D C:\Program Files (x86)\Object Browser
2015-08-09 01:21 - 2015-08-09 01:23 - 00000000 ____D C:\Program Files (x86)\iWebar
2015-08-09 01:21 - 2015-08-09 01:22 - 00008518 _____ C:\Windows\System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-11
2015-08-09 01:21 - 2015-08-09 01:22 - 00008198 _____ C:\Windows\System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-11
2015-08-09 01:21 - 2015-08-09 01:21 - 00003490 _____ C:\Windows\System32\Tasks\SPDriver
2015-08-09 01:21 - 2015-08-09 01:21 - 00000000 ____D C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\YTDownloader
2015-08-09 01:21 - 2015-08-09 01:21 - 00000000 ____D C:\Users\West\AppData\Roaming\istartsurf
2015-08-09 01:21 - 2015-08-09 01:21 - 00000000 ____D C:\ProgramData\yWinManProy
2015-08-09 01:21 - 2015-08-09 01:21 - 00000000 ____D C:\Program Files (x86)\YTDownloader
2015-08-09 01:21 - 2015-08-09 01:21 - 00000000 ____D C:\Program Files (x86)\FriendlyError
2015-08-09 01:20 - 2015-08-09 11:40 - 00000358 _____ C:\Windows\Tasks\AmiUpdXp.job
2015-08-09 01:20 - 2015-08-09 01:27 - 00003564 _____ C:\Windows\System32\Tasks\ShopperProJSUpd
2015-08-09 01:20 - 2015-08-09 01:27 - 00000000 ____D C:\Program Files (x86)\ShopperPro
2015-08-09 01:20 - 2015-08-09 01:21 - 00000000 ____D C:\ProgramData\ShopperPro
2015-08-09 01:20 - 2015-08-09 01:20 - 00225792 _____ C:\Windows\SysWOW64\807.exe
2015-08-09 01:20 - 2015-08-09 01:20 - 00003392 _____ C:\Windows\System32\Tasks\AmiUpdXp
2015-08-09 01:20 - 2015-08-09 01:20 - 00000000 ____D C:\Users\West\AppData\Local\CrashRpt
2015-08-09 01:20 - 2015-08-09 01:20 - 00000000 ____D C:\Users\West\AppData\Local\26959
2015-08-09 01:20 - 2015-08-09 01:20 - 00000000 ____D C:\Users\Public\Documents\ShopperPro
2015-08-09 01:14 - 2015-08-09 11:38 - 00001341 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-08-09 01:14 - 2015-08-09 11:38 - 00001329 _____ C:\Users\Public\Desktop\Opera.lnk
2015-08-09 01:14 - 2015-08-09 01:14 - 00003838 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1439075664
2015-08-09 01:02 - 2015-08-09 11:38 - 00002465 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-08-09 01:02 - 2015-08-09 01:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-08-09 01:01 - 2015-08-09 11:38 - 00001102 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-09 01:01 - 2015-08-09 03:06 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-08-09 01:01 - 2015-08-09 01:01 - 00931408 _____ (Google Inc.) C:\Users\West\Downloads\ChromeSetup (1).exe
2015-08-09 01:01 - 2015-08-09 01:01 - 00004102 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-09 01:01 - 2015-08-09 01:01 - 00003850 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-09 00:58 - 2015-08-09 00:58 - 00000000 ____D C:\TVTime
2015-08-09 00:52 - 2015-08-09 00:52 - 00000000 ____D C:\Program Files (x86)\CutterProc
2015-08-09 00:46 - 2015-08-09 00:46 - 00931408 _____ (Google Inc.) C:\Users\West\Downloads\ChromeSetup.exe
2015-08-09 00:23 - 2015-08-09 00:49 - 00010384 _____ C:\Windows\SysWOW64\acengineOff.ini
2015-08-09 00:23 - 2015-08-09 00:49 - 00010384 _____ C:\Windows\system32\acengineOff.ini
2015-08-09 00:22 - 2015-08-06 22:07 - 00299160 _____ (Abengine) C:\Windows\SysWOW64\acengine.dll
2015-08-09 00:21 - 2015-08-06 22:07 - 00351072 _____ (Abengine) C:\Windows\system32\acengine64.dll
2015-08-09 00:20 - 2015-08-09 11:38 - 00000504 _____ C:\Windows\setupact.log
2015-08-09 00:20 - 2015-08-09 11:37 - 00026276 _____ C:\Windows\PFRO.log
2015-08-09 00:20 - 2015-08-09 00:20 - 00000000 _____ C:\Windows\setuperr.log
2015-08-08 23:57 - 2015-08-09 01:10 - 00001050 _____ C:\Users\West\Desktop\Continue Live Installation.lnk
2015-08-08 23:57 - 2015-08-08 23:57 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\West\Downloads\revosetup95.exe
2015-08-08 23:57 - 2015-08-08 23:57 - 00001268 _____ C:\Users\West\Desktop\Revo Uninstaller.lnk
2015-08-08 23:57 - 2015-08-08 23:57 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-08-08 23:51 - 2015-08-09 11:51 - 00000000 ____D C:\Users\West\AppData\Local\TVTime
2015-08-08 23:50 - 2015-08-09 11:44 - 00003434 _____ C:\Windows\System32\Tasks\Eomelrieohan
2015-08-08 23:50 - 2015-08-08 23:50 - 00000000 ____D C:\ProgramData\Eomelrieohan
2015-08-08 23:48 - 2015-08-09 11:48 - 00003472 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7.job
2015-08-08 23:48 - 2015-08-09 11:48 - 00003136 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6.job
2015-08-08 23:48 - 2015-08-09 11:48 - 00002444 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5_user.job
2015-08-08 23:48 - 2015-08-09 11:48 - 00002444 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.job
2015-08-08 23:48 - 2015-08-09 11:38 - 00001012 _____ C:\Windows\Tasks\LDInRGVXHb5lecHw9IOp1S.job
2015-08-08 23:48 - 2015-08-08 23:48 - 00006502 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7
2015-08-08 23:48 - 2015-08-08 23:48 - 00006164 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6
2015-08-08 23:48 - 2015-08-08 23:48 - 00005474 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5
2015-08-08 23:48 - 2015-08-08 23:48 - 00004034 _____ C:\Windows\System32\Tasks\LDInRGVXHb5lecHw9IOp1S
2015-08-08 23:47 - 2015-08-09 11:47 - 00005516 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7.job
2015-08-08 23:47 - 2015-08-09 11:47 - 00005516 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6.job
2015-08-08 23:47 - 2015-08-08 23:47 - 00008546 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7
2015-08-08 23:47 - 2015-08-08 23:47 - 00008544 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6
2015-08-08 23:47 - 2015-08-08 23:47 - 00000000 ____D C:\Windows\system32\appmgmt
2015-08-08 23:47 - 2015-08-08 23:47 - 00000000 ____D C:\Program Files (x86)\e1ba420d-9e42-4633-a568-1b917ed64486
2015-08-08 23:46 - 2015-08-09 11:47 - 00004492 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3.job
2015-08-08 23:46 - 2015-08-08 23:47 - 00007522 _____ C:\Windows\System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3
2015-08-08 23:46 - 2015-08-08 23:46 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-08-08 23:45 - 2015-08-09 11:45 - 00002110 _____ C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-10_user.job
2015-08-08 23:45 - 2015-08-09 00:20 - 00000000 ____D C:\Program Files (x86)\CinemaPlus-3.2cV30.07
2015-08-08 23:45 - 2015-08-08 23:49 - 00000000 ____D C:\ProgramData\CZBPnMItUC
2015-08-08 23:44 - 2015-08-09 11:44 - 00001054 _____ C:\Windows\Tasks\Crossbrowse.job
2015-08-08 23:44 - 2015-08-08 23:45 - 00000000 ____D C:\ProgramData\nWinManPron
2015-08-08 23:44 - 2015-08-08 23:44 - 00004318 _____ C:\Windows\System32\Tasks\RocketTab Update Task
2015-08-08 23:44 - 2015-08-08 23:44 - 00004076 _____ C:\Windows\System32\Tasks\Crossbrowse
2015-08-08 23:44 - 2015-08-08 23:44 - 00003534 _____ C:\Windows\System32\Tasks\RocketTab
2015-08-08 23:44 - 2015-08-08 23:44 - 00002253 _____ C:\Users\Public\Desktop\Search.lnk
2015-08-08 23:44 - 2015-08-08 23:44 - 00000000 ____D C:\Users\West\AppData\Local\Crossbrowse
2015-08-08 23:43 - 2015-08-09 11:38 - 00000000 ____D C:\Program Files (x86)\FastSearch
2015-08-08 23:43 - 2015-08-09 00:24 - 00000002 _____ C:\END
2015-08-08 23:43 - 2015-08-08 23:43 - 00003086 _____ C:\Windows\System32\Tasks\did3010
2015-08-08 23:43 - 2015-08-08 23:43 - 00000000 ____D C:\Program Files (x86)\Crossbrowse
2015-08-08 23:43 - 2015-08-08 23:43 - 00000000 _____ C:\dummy.htm
2015-08-08 23:42 - 2015-08-09 01:20 - 00000000 ____D C:\Users\West\AppData\Local\SmartWeb
2015-08-08 23:42 - 2015-08-08 23:42 - 00004028 _____ C:\Windows\System32\Tasks\SmartWeb Upgrade Trigger Task
2015-08-08 23:25 - 2015-08-08 23:25 - 00002786 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-08-08 23:25 - 2015-08-08 23:25 - 00000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-08-08 23:25 - 2015-08-08 23:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-08-08 23:25 - 2015-08-08 23:25 - 00000000 ____D C:\Program Files\CCleaner
2015-08-08 22:44 - 2015-08-08 22:44 - 00000890 _____ C:\Windows\SysWOW64\${LOGFILE}
2015-08-08 22:34 - 2015-08-08 22:34 - 00000000 ____D C:\ProgramData\f0c4898e00004d90
2015-08-08 22:31 - 2015-08-09 00:17 - 00000000 ____D C:\Users\West\AppData\Roaming\Store
2015-08-08 22:31 - 2015-08-08 22:31 - 00003736 _____ C:\Windows\System32\Tasks\Selection Tools Update
2015-08-08 22:31 - 2015-08-08 22:31 - 00000078 _____ C:\Users\West\AppData\Roaming\Selection Tools.installation.log
2015-08-08 22:31 - 2015-08-08 22:31 - 00000000 ____D C:\Users\West\AppData\Roaming\WTools
2015-08-08 22:30 - 2015-08-08 22:30 - 00000078 _____ C:\Users\West\AppData\Roaming\WindApp.installation.log
2015-08-08 22:30 - 2015-08-08 22:30 - 00000000 ____D C:\Program Files (x86)\Math Anywhere
2015-08-08 22:29 - 2015-08-08 22:44 - 00000000 ____D C:\Users\West\AppData\Roaming\Nosibay
2015-08-08 22:29 - 2015-08-08 22:29 - 00005707 _____ C:\Users\West\AppData\Roaming\Bubble Dock.installation.log
2015-08-08 22:29 - 2015-08-08 22:29 - 00000024 _____ C:\Users\West\AppData\Roaming\appdataFr25.bin
2015-08-08 22:29 - 2015-08-08 22:29 - 00000000 ____D C:\ProgramData\75bd3841000077c6
2015-08-08 22:29 - 2015-08-08 22:29 - 00000000 ____D C:\Program Files (x86)\ALluSAver
2015-08-08 22:29 - 2015-08-08 22:29 - 00000000 ____D C:\Program Files (x86)\ALllSaVer
2015-08-08 22:28 - 2015-08-08 22:31 - 00001273 _____ C:\Users\West\AppData\Roaming\Bubble Dock.boostrap.log
2015-08-08 22:28 - 2015-08-08 22:28 - 00000097 _____ C:\Users\West\AppData\Roaming\WindApp.boostrap.log
2015-08-08 22:23 - 2015-08-08 22:26 - 192588976 _____ (Microsoft Corporation) C:\Users\West\Desktop\msert (3).exe
2015-08-08 22:23 - 2015-08-08 10:18 - 00048776 _____ (StdLib) C:\Windows\system32\Drivers\{6379a279-6da5-435f-86bf-c309005e8359}Gw64.sys
2015-08-08 22:21 - 2015-08-08 22:42 - 00000000 ____D C:\Program Files (x86)\Box Green
2015-08-08 22:21 - 2015-08-08 22:31 - 00000000 ____D C:\Users\West\AppData\Roaming\WarThunder
2015-08-08 22:21 - 2015-08-08 22:30 - 00000000 ____D C:\Users\West\AppData\Local\Pirates
2015-08-08 22:21 - 2015-08-08 22:29 - 00000000 ____D C:\Program Files (x86)\Super Optimizer
2015-08-08 22:21 - 2015-08-08 22:21 - 00000392 __RSH C:\ProgramData\ntuser.pol
2015-08-08 22:21 - 2015-08-08 22:21 - 00000000 ____D C:\Users\West\AppData\Roaming\Pirates854
2015-08-08 21:47 - 2015-08-08 21:47 - 00000000 ____D C:\Program Files (x86)\predm
2015-08-08 21:46 - 2015-08-08 21:46 - 00002107 _____ C:\Users\West\Desktop\Continue GamesDesktop Uninstaller.lnk
2015-08-08 21:42 - 2015-08-08 21:42 - 00003146 _____ C:\Windows\System32\Tasks\{F98DCF4C-C9B4-4BAC-8A29-2091D2F9100B}
2015-08-08 20:44 - 2015-08-08 20:44 - 00000000 ____D C:\Program Files (x86)\mailcom MailCheck
2015-08-08 20:43 - 2015-08-09 11:38 - 00000896 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2015-08-08 20:43 - 2015-08-09 11:38 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-08-08 20:43 - 2015-08-09 01:38 - 00000900 _____ C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2015-08-08 20:43 - 2015-08-09 01:33 - 00003898 _____ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2015-08-08 20:43 - 2015-08-09 01:33 - 00003644 _____ C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2015-08-08 20:43 - 2015-08-08 22:29 - 00000000 ____D C:\Program Files (x86)\youtubeadblocker
2015-08-08 20:43 - 2015-08-08 20:43 - 00000000 ____D C:\Users\West\AppData\Local\globalUpdate
2015-08-08 20:42 - 2015-08-09 01:14 - 00000000 ____D C:\Users\West\AppData\Roaming\Opera Software
2015-08-08 20:42 - 2015-08-09 01:14 - 00000000 ____D C:\Users\West\AppData\Local\Opera Software
2015-08-08 20:42 - 2015-08-08 23:17 - 00000000 ____D C:\Users\West\AppData\Local\03000200-1439066526-0500-0006-000700080009
2015-08-08 20:42 - 2015-08-08 22:30 - 00000000 ____D C:\ProgramData\6822652441811601058
2015-08-08 20:42 - 2015-08-08 22:29 - 00000000 ____D C:\Program Files (x86)\PriceLess
2015-08-08 20:41 - 2015-08-09 02:50 - 00000000 ____D C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009
2015-08-08 20:41 - 2015-08-08 20:41 - 00000000 ____D C:\ProgramData\IHProtectUpDate
2015-08-08 20:41 - 2009-06-10 23:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hp.bak
2015-08-08 20:40 - 2015-08-09 02:40 - 00000348 _____ C:\Windows\Tasks\CaffeineFix.job
2015-08-08 20:40 - 2015-08-09 01:22 - 00000000 ____D C:\Program Files (x86)\MiuiTab
2015-08-08 20:40 - 2015-08-08 21:37 - 00000000 ____D C:\Users\West\AppData\Local\Tortuga
2015-08-08 20:40 - 2015-08-08 20:41 - 00000000 ____D C:\ProgramData\tWinManProt
2015-08-08 20:40 - 2015-08-08 20:41 - 00000000 ____D C:\ProgramData\{0ae495bc-521a-fc02-0ae4-495bc52156f1}
2015-08-08 20:40 - 2015-08-08 20:40 - 00003258 _____ C:\Windows\System32\Tasks\CaffeineFix
2015-08-08 20:40 - 2015-08-08 20:40 - 00003174 _____ C:\Windows\System32\Tasks\crash_service
2015-08-08 20:40 - 2015-08-08 20:40 - 00003134 _____ C:\Windows\System32\Tasks\tortuga
2015-08-08 20:40 - 2015-08-08 20:40 - 00000000 _____ C:\Windows\prleth.sys
2015-08-08 20:40 - 2015-08-08 20:40 - 00000000 _____ C:\Windows\hgfs.sys
2015-08-08 20:39 - 2015-08-09 11:38 - 00000364 _____ C:\Windows\Tasks\LVKAHSH1.job
2015-08-08 20:39 - 2015-08-09 01:14 - 00000000 ____D C:\Program Files (x86)\Opera
2015-08-08 20:39 - 2015-08-09 00:20 - 00000000 ____D C:\ProgramData\SecurityUtility
2015-08-08 20:39 - 2015-08-08 20:45 - 00000000 ____D C:\Users\West\AppData\Roaming\InetStat
2015-08-08 20:39 - 2015-08-08 20:40 - 00009739 _____ C:\claraInstaller.txt
2015-08-08 20:39 - 2015-08-08 20:40 - 00000000 ____D C:\Program Files (x86)\GUPlayer
2015-08-08 20:39 - 2015-08-08 20:39 - 00002886 _____ C:\Windows\System32\Tasks\LVKAHSH1
2015-08-08 20:39 - 2015-08-08 20:39 - 00000000 ____D C:\ProgramData\7b24ec7cc000461ebe26d116b88142c8
2015-08-07 14:35 - 2015-08-07 14:35 - 00000000 ____D C:\Windows\System32\Tasks\Games
2015-07-28 23:47 - 2015-07-28 23:47 - 00061328 _____ (PhraseProfessor) C:\Windows\system32\Drivers\ppfd_vt_1_10_0_21.sys
2015-07-28 23:47 - 2015-07-28 23:47 - 00057744 _____ (PhraseProfessor) C:\Windows\system32\Drivers\ppfd_vw_1_10_0_21.sys
2015-07-28 11:20 - 2015-07-25 20:07 - 00017856 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-07-28 11:20 - 2015-07-25 20:04 - 00765440 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-07-28 11:20 - 2015-07-25 20:04 - 00726528 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-07-28 11:20 - 2015-07-25 20:03 - 01085440 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-07-28 11:20 - 2015-07-25 20:03 - 00433664 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-07-28 11:20 - 2015-07-25 20:03 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-07-28 11:20 - 2015-07-25 20:03 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-07-28 11:20 - 2015-07-25 19:55 - 01145856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-07-27 16:45 - 2015-07-27 16:45 - 00000017 _____ C:\Users\West\AppData\Local\resmon.resmoncfg
2015-07-22 09:13 - 2015-07-22 09:13 - 00000000 ____D C:\Users\West\AppData\Local\CEF
2015-07-21 09:44 - 2015-07-15 05:19 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-07-21 09:44 - 2015-07-15 05:19 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-07-21 09:44 - 2015-07-15 05:19 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-07-21 09:44 - 2015-07-15 05:19 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-07-21 09:44 - 2015-07-15 04:55 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2015-07-21 09:44 - 2015-07-15 04:55 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2015-07-21 09:44 - 2015-07-15 04:55 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2015-07-21 09:44 - 2015-07-15 04:54 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2015-07-21 09:44 - 2015-07-15 03:59 - 00372224 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-07-21 09:44 - 2015-07-15 03:52 - 00299008 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2015-07-20 19:00 - 2015-07-31 15:52 - 00000264 _____ C:\Users\West\Desktop\minecraft.txt
2015-07-20 18:54 - 2015-07-20 18:54 - 00000000 ____D C:\Users\West\AppData\Local\YSearchUtil
2015-07-20 18:52 - 2015-07-20 18:52 - 00000000 ____D C:\Users\West\AppData\Roaming\java
2015-07-20 18:52 - 2015-07-20 18:52 - 00000000 ____D C:\ProgramData\Sun
2015-07-20 18:52 - 2015-07-20 18:51 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-07-20 18:51 - 2015-07-20 18:51 - 00000000 ____D C:\ProgramData\Oracle
2015-07-20 18:51 - 2015-07-20 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-07-20 18:51 - 2015-07-20 18:51 - 00000000 ____D C:\Program Files (x86)\Java
2015-07-18 17:56 - 2015-08-08 22:33 - 00000000 ____D C:\ProgramData\Pendulo Studios
2015-07-18 17:39 - 2015-08-08 22:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CRIMSON COW
2015-07-18 17:39 - 2015-08-08 22:33 - 00000000 ____D C:\Program Files (x86)\CRIMSON COW
2015-07-18 16:44 - 2015-07-18 17:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Anno 1701
2015-07-18 16:18 - 2015-07-18 16:18 - 00000000 ____D C:\Users\West\Documents\Image-Line
2015-07-18 16:18 - 2015-07-18 16:18 - 00000000 ____D C:\Users\West\AppData\Roaming\Image-Line
2015-07-18 16:18 - 2015-07-18 16:18 - 00000000 ____D C:\Program Files\Common Files\VST2
2015-07-18 16:18 - 2015-07-18 16:18 - 00000000 ____D C:\Program Files\Common Files\Propellerhead Software
2015-07-18 16:17 - 2015-08-07 12:14 - 00000000 ____D C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-07-18 16:17 - 2015-08-07 12:14 - 00000000 ____D C:\Program Files\Image-Line
2015-07-18 16:17 - 2015-07-18 16:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Image-Line
2015-07-18 16:10 - 2015-08-08 23:45 - 00000000 ____D C:\Program Files (x86)\Image-Line
2015-07-15 11:25 - 2015-06-25 20:09 - 00389832 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-07-15 11:25 - 2015-06-25 19:43 - 00342736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-07-15 11:25 - 2015-06-20 22:06 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-07-15 11:25 - 2015-06-20 21:50 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-07-15 11:25 - 2015-06-20 21:49 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-07-15 11:25 - 2015-06-20 21:49 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-07-15 11:25 - 2015-06-20 21:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-07-15 11:25 - 2015-06-20 21:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-07-15 11:25 - 2015-06-20 21:34 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-07-15 11:25 - 2015-06-20 21:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-07-15 11:25 - 2015-06-20 21:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-07-15 11:25 - 2015-06-20 21:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-07-15 11:25 - 2015-06-20 21:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-07-15 11:25 - 2015-06-20 21:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-07-15 11:25 - 2015-06-20 21:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-07-15 11:25 - 2015-06-20 21:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-07-15 11:25 - 2015-06-20 20:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-07-15 11:25 - 2015-06-20 20:48 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-07-15 11:25 - 2015-06-20 20:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-07-15 11:25 - 2015-06-20 20:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-07-15 11:25 - 2015-06-20 20:26 - 02427392 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-07-15 11:25 - 2015-06-20 20:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-07-15 11:25 - 2015-06-19 20:25 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-07-15 11:25 - 2015-06-19 20:25 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-07-15 11:25 - 2015-06-19 20:24 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-07-15 11:25 - 2015-06-19 20:24 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-07-15 11:25 - 2015-06-19 20:23 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-07-15 11:25 - 2015-06-19 20:17 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-07-15 11:25 - 2015-06-19 20:16 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-07-15 11:25 - 2015-06-19 20:13 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-07-15 11:25 - 2015-06-19 20:13 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-07-15 11:25 - 2015-06-19 20:03 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-07-15 11:25 - 2015-06-19 19:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-07-15 11:25 - 2015-06-19 19:53 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-07-15 11:25 - 2015-06-19 19:52 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-07-15 11:25 - 2015-06-19 19:51 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-07-15 11:25 - 2015-06-19 19:40 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-07-15 11:25 - 2015-06-19 19:40 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-07-15 11:25 - 2015-06-19 19:39 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-07-15 11:25 - 2015-06-19 19:15 - 01951232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-07-15 11:25 - 2015-06-19 19:11 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-07-15 11:24 - 2015-06-20 21:49 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-07-15 11:24 - 2015-06-20 21:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-07-15 11:24 - 2015-06-20 21:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 03154944 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 02603008 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-07-15 11:23 - 2015-07-09 19:58 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00037376 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-07-15 11:23 - 2015-07-09 19:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-07-15 11:23 - 2015-07-09 19:58 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-07-15 11:23 - 2015-07-09 19:43 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-07-15 11:23 - 2015-07-09 19:43 - 00173056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-07-15 11:23 - 2015-07-09 19:43 - 00093184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-07-15 11:23 - 2015-07-09 19:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-07-15 11:23 - 2015-07-09 19:42 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-07-15 11:23 - 2015-07-02 23:21 - 19877376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-07-15 11:23 - 2015-07-02 23:08 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-07-15 11:23 - 2015-07-02 22:50 - 02279424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-07-15 11:23 - 2015-07-02 22:49 - 25193984 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-07-15 11:23 - 2015-07-02 22:46 - 00479232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-07-15 11:23 - 2015-07-02 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-07-15 11:23 - 2015-07-02 22:23 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-07-15 11:23 - 2015-07-02 22:19 - 12855296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-07-15 11:23 - 2015-07-02 22:12 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-07-15 11:23 - 2015-07-02 21:55 - 01310720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-07-15 11:23 - 2015-07-02 21:20 - 14453248 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-07-15 11:23 - 2015-07-02 20:59 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-07-15 11:23 - 2015-06-27 04:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-07-15 11:23 - 2015-06-27 04:43 - 05923840 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-07-15 11:23 - 2015-06-27 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-07-15 11:23 - 2015-06-27 03:39 - 04520448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-07-15 11:23 - 2015-06-25 10:57 - 03207168 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-07-15 11:23 - 2015-06-17 19:47 - 00404992 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-07-15 11:23 - 2015-06-17 19:37 - 00312320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-07-15 11:23 - 2015-06-09 20:03 - 03180544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2015-07-15 11:23 - 2015-06-09 20:03 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2015-07-15 11:23 - 2015-06-02 02:07 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\cewmdm.dll
2015-07-15 11:23 - 2015-06-02 01:47 - 00210432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cewmdm.dll
2015-07-15 11:20 - 2015-07-04 20:07 - 02087424 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2015-07-15 11:20 - 2015-07-04 19:48 - 01414656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2015-07-15 11:20 - 2015-07-01 22:56 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-07-15 11:20 - 2015-07-01 22:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-07-15 11:20 - 2015-07-01 22:49 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00729088 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-07-15 11:20 - 2015-07-01 22:49 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-07-15 11:20 - 2015-07-01 22:48 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-07-15 11:20 - 2015-07-01 22:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-07-15 11:20 - 2015-07-01 22:47 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-07-15 11:20 - 2015-07-01 22:47 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-07-15 11:20 - 2015-07-01 22:43 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-07-15 11:20 - 2015-07-01 22:43 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-07-15 11:20 - 2015-07-01 22:39 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-07-15 11:20 - 2015-07-01 22:30 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-07-15 11:20 - 2015-07-01 22:29 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-07-15 11:20 - 2015-07-01 22:29 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-07-15 11:20 - 2015-07-01 22:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-07-15 11:20 - 2015-07-01 22:27 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-07-15 11:20 - 2015-07-01 22:26 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-07-15 11:20 - 2015-07-01 22:24 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-07-15 11:20 - 2015-07-01 21:27 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-07-15 11:20 - 2015-07-01 21:26 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-07-15 11:20 - 2015-07-01 21:26 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-07-15 11:20 - 2015-06-11 19:57 - 06131200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-07-15 11:20 - 2015-06-11 19:57 - 00856064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdvidcrl.dll
2015-07-15 11:20 - 2015-06-11 19:57 - 00053248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-07-15 11:20 - 2015-06-11 19:56 - 07077376 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-07-15 11:20 - 2015-06-11 19:56 - 01057792 _____ (Microsoft Corporation) C:\Windows\system32\rdvidcrl.dll
2015-07-15 11:20 - 2015-06-11 19:56 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-07-15 11:20 - 2015-06-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\wksprt.exe
2015-07-15 11:20 - 2015-04-27 21:23 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-07-15 11:20 - 2015-04-27 21:23 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-07-15 11:20 - 2015-04-27 21:23 - 00188416 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-07-15 11:20 - 2015-04-27 21:23 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-07-15 11:20 - 2015-04-27 21:05 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-07-15 11:20 - 2015-04-27 21:04 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-07-15 11:20 - 2015-04-27 21:04 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-07-15 11:20 - 2015-04-27 21:04 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-07-15 11:19 - 2015-06-15 23:50 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-07-15 11:19 - 2015-06-15 23:45 - 03242496 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-07-15 11:19 - 2015-06-15 23:45 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-07-15 11:19 - 2015-06-15 23:45 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-07-15 11:19 - 2015-06-15 23:45 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-07-15 11:19 - 2015-06-15 23:44 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\msiexec.exe
2015-07-15 11:19 - 2015-06-15 23:43 - 02364416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-07-15 11:19 - 2015-06-15 23:43 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-07-15 11:19 - 2015-06-15 23:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-07-15 11:19 - 2015-06-15 23:42 - 00073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msiexec.exe
2015-07-15 11:19 - 2015-06-15 23:42 - 00025088 _____ (Microsoft Corporation) C:\Windows\system32\msimsg.dll
2015-07-15 11:19 - 2015-06-15 23:37 - 00025088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msimsg.dll
2015-07-15 01:25 - 2015-08-07 00:45 - 00000488 _____ C:\Users\West\Desktop\Ts.txt

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-08-09 11:46 - 2009-07-14 06:45 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-08-09 11:46 - 2009-07-14 06:45 - 00025680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-08-09 11:43 - 2015-06-08 16:48 - 01676232 _____ C:\Windows\WindowsUpdate.log
2015-08-09 11:40 - 2015-06-08 22:06 - 00000000 ____D C:\Users\West\AppData\Roaming\Skype
2015-08-09 11:39 - 2015-06-08 17:17 - 00000000 ____D C:\Program Files (x86)\Steam
2015-08-09 11:38 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-08-09 11:37 - 2015-06-08 17:58 - 00000000 ____D C:\ProgramData\NVIDIA
2015-08-09 01:27 - 2009-07-14 05:20 - 00000000 ____D C:\Program Files\Common Files\System
2015-08-09 01:02 - 2015-06-08 17:08 - 00000000 ____D C:\Users\West\AppData\Local\Google
2015-08-09 01:02 - 2015-06-08 17:08 - 00000000 ____D C:\Program Files (x86)\Google
2015-08-08 23:47 - 2015-06-08 19:04 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-08-08 23:47 - 2015-06-08 18:50 - 00000000 ____D C:\Program Files (x86)\Adobe
2015-08-08 23:27 - 2015-06-09 14:39 - 00000000 ____D C:\Users\West\AppData\Roaming\TS3Client
2015-08-08 23:26 - 2015-06-09 02:44 - 00000000 ____D C:\Windows\Panther
2015-08-08 22:24 - 2009-07-14 04:34 - 00000505 _____ C:\Windows\win.ini
2015-08-08 22:21 - 2009-07-14 05:20 - 00000000 ___HD C:\Windows\system32\GroupPolicy
2015-08-08 22:21 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\SysWOW64\GroupPolicy
2015-08-08 21:29 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2015-08-08 17:30 - 2015-07-07 15:21 - 00000000 ____D C:\Users\West\AppData\Roaming\.minecraft
2015-08-08 17:10 - 2015-07-06 15:31 - 00000388 _____ C:\Users\West\Desktop\Alles hat ein Ende.txt
2015-08-07 12:12 - 2015-06-16 19:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2015-08-07 12:12 - 2015-03-05 16:23 - 00000000 ____D C:\Nexon
2015-08-07 12:11 - 2015-07-01 14:22 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2015-08-06 01:14 - 2015-07-01 14:29 - 00000000 ____D C:\Users\West\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AeriaGames
2015-08-06 01:14 - 2015-07-01 13:39 - 00000000 ____D C:\AeriaGames
2015-08-06 01:12 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-07-29 01:46 - 2015-06-10 12:11 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-07-25 09:14 - 2015-06-10 12:11 - 00000000 ___SD C:\Windows\system32\GWX
2015-07-23 04:24 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\rescache
2015-07-22 09:09 - 2009-07-14 06:45 - 00268536 _____ C:\Windows\system32\FNTCACHE.DAT
2015-07-20 10:17 - 2015-06-15 22:09 - 00000468 _____ C:\Users\West\Desktop\neuer text kp.txt
2015-07-18 17:37 - 2015-06-08 19:05 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-07-18 16:45 - 2015-06-08 17:04 - 00000000 ____D C:\Users\West\AppData\Local\VirtualStore
2015-07-16 07:17 - 2015-06-10 12:11 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2015-07-16 07:16 - 2015-06-10 12:11 - 00000000 ____D C:\Windows\system32\appraiser
2015-07-16 02:52 - 2015-06-08 22:39 - 00000000 ____D C:\Windows\system32\MRT
2015-07-10 16:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2015-08-08 22:29 - 2015-08-08 22:29 - 0000024 _____ () C:\Users\West\AppData\Roaming\appdataFr25.bin
2015-08-08 22:28 - 2015-08-08 22:31 - 0001273 _____ () C:\Users\West\AppData\Roaming\Bubble Dock.boostrap.log
2015-08-08 22:29 - 2015-08-08 22:29 - 0005707 _____ () C:\Users\West\AppData\Roaming\Bubble Dock.installation.log
2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\West\AppData\Roaming\LDInRGVXHb5lecHw9IOp1S
2015-04-20 16:05 - 2015-04-20 16:05 - 1579520 _____ () C:\Users\West\AppData\Roaming\LDInRGVXHb5lecHw9IOp1S.exe
2015-08-08 22:31 - 2015-08-08 22:31 - 0000078 _____ () C:\Users\West\AppData\Roaming\Selection Tools.installation.log
2015-08-08 22:28 - 2015-08-08 22:28 - 0000097 _____ () C:\Users\West\AppData\Roaming\WindApp.boostrap.log
2015-08-08 22:30 - 2015-08-08 22:30 - 0000078 _____ () C:\Users\West\AppData\Roaming\WindApp.installation.log
2015-08-09 01:24 - 2015-08-09 01:24 - 0613255 _____ (CMI Limited) C:\Users\West\AppData\Local\nss15CC.tmp
2015-07-27 16:45 - 2015-07-27 16:45 - 0000017 _____ () C:\Users\West\AppData\Local\resmon.resmoncfg

Einige Dateien in TEMP:
====================
C:\Users\West\AppData\Local\Temp\1696.exe
C:\Users\West\AppData\Local\Temp\2058.exe
C:\Users\West\AppData\Local\Temp\295.exe
C:\Users\West\AppData\Local\Temp\7757.exe
C:\Users\West\AppData\Local\Temp\fsdDE5.exe
C:\Users\West\AppData\Local\Temp\fuf9443.exe
C:\Users\West\AppData\Local\Temp\fufD08B.exe
C:\Users\West\AppData\Local\Temp\optprosetup.exe
C:\Users\West\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\West\AppData\Local\Temp\System.Data.SQLite8381cb46-bfeb-44e4-b0a3-249df5c3880e.dll
C:\Users\West\AppData\Local\Temp\tf18425387.dll
C:\Users\West\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap Check =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-08-02 04:28

==================== Ende von log ============================
         

--- --- ---

FRST Additions Logfile:

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:08-08-2015 01
durchgeführt von West (2015-08-09 11:54:31)
Gestartet von C:\Users\West\Downloads
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2397688693-1529591270-1724079470-500 - Administrator - Disabled)
Gast (S-1-5-21-2397688693-1529591270-1724079470-501 - Limited - Disabled)
West (S-1-5-21-2397688693-1529591270-1724079470-1000 - Administrator - Enabled) => C:\Users\West

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Reader XI (11.0.04) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.04 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Akamai) (Version:  - Akamai Technologies, Inc)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.4 - CMI Limited) <==== ACHTUNG
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.4.9.2 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.4.9.2 - ASUSTek COMPUTER INC.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CutterProc (HKLM-x32\...\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}{285bff21}) (Version:  - Software Publisher) <==== ACHTUNG
Friendly Error (HKLM-x32\...\FriendlyError) (Version:  - )
GamesDesktop 014.005010055 (HKLM-x32\...\gmsd_de_005010055_is1) (Version:  - GAMESDESKTOP) <==== ACHTUNG
Ge-Force (HKLM-x32\...\Ge-Force) (Version: 1.36.01.22 - Webar) <==== ACHTUNG
globalupdate Helper (x32 Version: 1.3.25.0 - globalupdate Inc.) Hidden <==== ACHTUNG
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 44.0.2403.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.28.1 - Google Inc.) Hidden
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.5 - ASUS) Hidden
istartsurf uninstall (HKLM-x32\...\istartsurf uninstall) (Version:  - istartsurf) <==== ACHTUNG
iWebar (HKLM-x32\...\iWebar) (Version: 1.36.01.22 - Webby) <==== ACHTUNG
Java 8 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Knuddels Desktop App (HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft1.6.2 (HKLM-x32\...\Minecraft1.6.2) (Version:  - )
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.4.5.57 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.57 - NVIDIA Corporation)
NVIDIA Grafiktreiber 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B455E95A-B804-439F-B533-336B1635AE97}) (Version: 9.14.0702 - NVIDIA Corporation)
Object Browser (HKLM-x32\...\Object Browser) (Version: 1.36.01.22 - ObjectB) <==== ACHTUNG
Opera Stable 31.0.1889.106 (HKLM-x32\...\Opera 31.0.1889.106) (Version: 31.0.1889.106 - Opera Software)
Optimizer Pro v3.2 (HKLM-x32\...\Optimizer Pro_is1) (Version: 3.3.1.7 - PCUtilities Software Limited) <==== ACHTUNG
PhraseProfessor 1.10.0.21 (HKLM-x32\...\PhraseProfessor_1.10.0.21) (Version: 1.10.0.21 - PhraseProfessor)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Search module (HKLM-x32\...\Search module) (Version:  - Goobzo)
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version:  - )
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.57 - NVIDIA Corporation) Hidden
Shopper-Pro (HKLM-x32\...\ShopperPro) (Version:  - ) <==== ACHTUNG
Skype™ 7.6 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.6.105 - Skype Technologies S.A.)
SmartWeb (HKLM-x32\...\SmartWeb) (Version: 8.0.9 - SoftBrain Technologies Ltd.) <==== ACHTUNG
Software Version Updater (HKLM-x32\...\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}) (Version: 1.1.4.2 - ) <==== ACHTUNG
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43174 - TeamViewer)
WinRAR 5.21 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
YTDownloader (HKLM-x32\...\YTDownloader) (Version:  - YTDownloader) <==== ACHTUNG

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Wiederherstellungspunkte =========================

08-08-2015 23:45:31 Removed ASUS Product Register Program
08-08-2015 23:59:54 Revo Uninstaller's restore point - Crossbrowse
09-08-2015 00:01:32 Revo Uninstaller's restore point - Crossbrowse
09-08-2015 00:04:44 Revo Uninstaller's restore point - CinemaPlus-3.2cV30.07
09-08-2015 00:06:13 Revo Uninstaller's restore point - mystartsearch uninstall
09-08-2015 00:07:24 Revo Uninstaller's restore point - TV Time
09-08-2015 00:09:21 Revo Uninstaller's restore point - RocketTab
09-08-2015 00:14:16 Revo Uninstaller's restore point - Selection Tools
09-08-2015 00:15:23 Revo Uninstaller's restore point - WordShark 1.10.0.20
09-08-2015 00:16:14 Revo Uninstaller's restore point - SecurityUtility
09-08-2015 00:17:16 Revo Uninstaller's restore point - WindApp
09-08-2015 00:18:10 Revo Uninstaller's restore point - AllSAver
09-08-2015 00:42:32 Revo Uninstaller's restore point - Google Chrome
09-08-2015 03:42:25 Windows Update

==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {05718433-D639-4E66-86E0-A32594CA0219} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5_user => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-5.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {091008A2-DB4B-4E68-A1F7-AD238854B0CC} - System32\Tasks\SPBIW_UpdateTask_Time_313838343431383736332d45372a5a506c41324a345741 => Wscript.exe //B "C:\ProgramData\ShopperPro\spbihe.js" spbiu.exe /invoke /f:check_services /l:0 <==== ACHTUNG
Task: {0B58AFC5-A97F-4F24-959A-EEC83C063967} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {0E291F98-E60D-4E3A-88CA-1C20C51CE175} - System32\Tasks\Optimizer Pro Schedule => C:\Program Files (x86)\Optimizer Pro 3.99\OptProLauncher.exe [2015-07-31] () <==== ACHTUNG
Task: {13EF7D07-4C87-4161-B333-30D3850E579A} - System32\Tasks\ShopperPro => C:\Program Files (x86)\ShopperPro\ShopperPro.exe [2015-08-08] (Goobzo LTD) <==== ACHTUNG
Task: {19D41905-8953-422A-87A3-926AD91983AD} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe [2015-08-08] (Goobzo) <==== ACHTUNG
Task: {1DF2C90D-6382-40DC-925E-D688809C44D0} - System32\Tasks\{F98DCF4C-C9B4-4BAC-8A29-2091D2F9100B} => pcalua.exe -a C:\Users\West\AppData\Roaming\mystartsearch\UninstallManager.exe -c  -ptid=ima
Task: {25068ECA-105C-4840-93AA-6FFBFE978CDB} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-11 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-11.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {32784082-0C60-4047-890E-8E325E2A8D2C} - System32\Tasks\SPDriver => C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.exe [2015-08-08] () <==== ACHTUNG
Task: {33F52F22-1E21-4A11-8254-520BF4107460} - System32\Tasks\ShopperProJSUpd => C:\Program Files (x86)\ShopperPro\updater.exe [2015-08-08] (Goobzo) <==== ACHTUNG
Task: {345A8C36-FA99-4D44-9217-7A44F9595EB4} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-11 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-11.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {36A6B3F5-1871-462D-B998-22E8320083B4} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-10_user => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-10.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {399F55D9-440C-455B-A5EF-70EAD9B9B223} - System32\Tasks\Selection Tools Update => C:\Users\West\AppData\Roaming\WTools\Selection Tools\Selection Tools Update.exe <==== ACHTUNG
Task: {3C7DEFFD-8EC7-4A43-828F-7C7BB7B6D41C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-09] (Google Inc.)
Task: {3E74BC9C-D31A-4651-A78D-505F4C77E1E3} - System32\Tasks\SmartWeb Upgrade Trigger Task => C:\Users\West\AppData\Local\SmartWeb\SmartWebHelper.exe [2015-02-17] (SoftBrain Technologies Ltd.) <==== ACHTUNG
Task: {40D0D0CA-2378-43A9-B376-499E09539D0D} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7.exe <==== ACHTUNG
Task: {4A72CD02-F8D4-43F7-9324-A4C8A4E15EC1} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-6 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-6.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {4A7468C1-7E92-48EF-851B-72C4D9759980} - System32\Tasks\RocketTab => cmd.exe /C start "" "C:\Program Files (x86)\Search Extensions\Client.exe" /Preferred=true <==== ACHTUNG
Task: {50DA1E4D-35E3-4C28-80B9-DC1665FC10AE} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-7 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-7.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {55596B99-3DEC-4CAA-B741-D46ACFAF2E43} - System32\Tasks\LDInRGVXHb5lecHw9IOp1S => C:\Users\West\AppData\Roaming\LDInRGVXHb5lecHw9IOp1S.exe [2015-04-20] () <==== ACHTUNG
Task: {571CA5B3-7419-4A37-884A-A2772E312438} - System32\Tasks\Opera scheduled Autoupdate 1439075664 => C:\Program Files (x86)\Opera\launcher.exe [2015-08-06] (Opera Software)
Task: {57B83ABE-28AE-4588-9C6F-7CCD73CBC286} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-10_user => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-10.exe <==== ACHTUNG
Task: {57EAA0D8-9584-4412-8D48-13616F2079F8} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ACHTUNG
Task: {5A01898F-6B25-4236-BFB7-69EAF065765B} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ACHTUNG
Task: {5B13B714-3C06-4348-8950-20ED07617A97} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-5.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {5EE68F57-71CA-40DA-A19D-235BF971815F} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {63E4EE8C-B9C8-474B-A605-69DFA2790304} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5_user => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.exe <==== ACHTUNG
Task: {650EC341-16ED-424A-83A9-622AC9FD417E} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5_user => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {6A275AAD-2194-4B79-979A-75F1E4087BA1} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-08-09] (AnyProtect.com) <==== ACHTUNG
Task: {6F34743F-1DAE-4BDB-871D-91CEED44BC23} - System32\Tasks\RocketTab Update Task => C:\Program Files (x86)\Search Extensions\uninstall.exe <==== ACHTUNG
Task: {7210752B-5315-41D8-8C16-EEF10625C97C} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ACHTUNG
Task: {750FC280-018D-4D69-97F8-7E147A474529} - System32\Tasks\globalUpdateUpdateTaskMachineUA => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-08-09] (globalUpdate) <==== ACHTUNG
Task: {789F7D13-84F4-4899-B281-D5A985E06B41} - System32\Tasks\tortuga => C:\Users\West\AppData\Local\Tortuga\Application\tortuga.exe
Task: {7BBA0557-20BA-4AA0-B007-67F6259EEF7B} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {7DB19863-FF82-4F88-84C5-D0F6A073DD04} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7.exe <==== ACHTUNG
Task: {7FF84B18-FE45-4E5A-90E4-C2397A4619B1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)
Task: {82011EC2-468C-4C05-9FD6-982818519CDF} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6.exe <==== ACHTUNG
Task: {84ACACD8-F824-4F29-8E50-14F2F0579595} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5_user => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {86AB01A1-167D-4A9A-A981-48D39FCCE28E} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {9463A630-147A-4C91-8C86-5E087C0AB67C} - System32\Tasks\globalUpdateUpdateTaskMachineCore => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe [2015-08-09] (globalUpdate) <==== ACHTUNG
Task: {9F966173-82C0-4458-850B-E231468F274E} - System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Pending Update => C:\Program Files (x86)\PhraseProfessor_1.10.0.21\Update\PhraseProfessorAutoUpdateClient.exe [2015-07-28] (PhraseProfessor)
Task: {A4F05093-1A85-478F-9BA0-B37B775747C7} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6.exe <==== ACHTUNG
Task: {A683E918-06AA-4891-9283-59A2BFE0D2A0} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {AAEBBC6B-D12C-4602-ADFA-69229A2622CF} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-7 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-7.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {AE3D3244-EA73-419F-83E4-1A25DD080089} - System32\Tasks\CaffeineFix => c:\programdata\{0ae495bc-521a-fc02-0ae4-495bc52156f1}\pricelessinstaller.exe [2014-08-08] () <==== ACHTUNG
Task: {BB2422F4-D3B3-41EE-A1F5-2B4BEE2BF6F7} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-7 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-7.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {BC1AF9B8-B738-440E-9E26-78601E356609} - System32\Tasks\crash_service => C:\Users\West\AppData\Local\Tortuga\Application\crash_service.exe
Task: {BE4F3942-D757-4DA4-BC87-5C6F2F46BA24} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-08-09] (AnyProtect.com) <==== ACHTUNG
Task: {BF3327E7-6621-4AAC-91F0-4F8B49121F5C} - System32\Tasks\SMW_UpdateTask_Time_313838343431383736332d45372a5a506c41324a345741 => Wscript.exe //B "C:\ProgramData\SearchModule\smhe.js" smu.exe /invoke /f:check_services /l:0 <==== ACHTUNG
Task: {C2521828-A7ED-46D6-B0F2-C1E3E362FD58} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {C4C9C9F2-34E7-434E-B631-B7A957F1DA4D} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-6 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-6.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {C708D238-03F7-4E73-93E0-52A3318A33B1} - System32\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5 => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.exe [2015-08-09] (Webar) <==== ACHTUNG
Task: {C7D24D4E-43D9-4F0C-A1C7-9D84AD44CCA8} - System32\Tasks\did3010 => C:\Program Files (x86)\FastSearch\did3010.exe [2015-08-06] ()
Task: {C820ADBB-1066-4BE8-A65A-D8DB13CA8E4F} - System32\Tasks\LVKAHSH1 => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ACHTUNG
Task: {CD1DCE4E-3B39-4FB1-AC43-73D07D548357} - System32\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-6 => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-6.exe [2015-08-09] (Webby) <==== ACHTUNG
Task: {CDA01B9E-FB79-475A-A8C6-4B9E8CFA14D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-09] (Google Inc.)
Task: {D0278F4A-D71C-4E76-8108-DFFE5AC9F09D} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [2015-08-08] (YTDownloader) <==== ACHTUNG
Task: {D21869A2-4D96-4C06-A34D-CBEF5F3DEF79} - System32\Tasks\Optscan => c:\programdata\{04b9ce1a-dfed-852d-04b9-9ce1adfe386b}\hqghumeaylnlf.exe [2014-08-09] (PC Utilities Software Limited) <==== ACHTUNG
Task: {D8ABF3BC-C5F1-499E-B553-BE82B424213B} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-11 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-11.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {D98A16BD-11B3-429A-AA2D-665BDD70AD32} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2397688693-1529591270-1724079470-1000
Task: {E180FB8B-48FD-410D-A9F1-0F70C14D1BF2} - System32\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6 => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6.exe [2015-08-09] (ObjectB) <==== ACHTUNG
Task: {E507126E-1CAD-4340-9FC5-3E0CDA3FE892} - System32\Tasks\AmiUpdXp => C:\Users\West\AppData\Local\26959\Updater.exe [2015-08-09] () <==== ACHTUNG
Task: {E62803F3-45C5-42D8-AB0C-854BAF4F8A7B} - System32\Tasks\Smp => C:\Program Files\Common Files\Goobzo\GBUpdate\smp.exe [2015-08-08] () <==== ACHTUNG
Task: {E6897E56-C3A7-43FC-9E70-9761299ECF9B} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ACHTUNG
Task: {EDDCC9BB-5DD2-4983-857A-78370B9734B1} - System32\Tasks\PhraseProfessor Auto Updater 1.10.0.21 Core => C:\Program Files (x86)\PhraseProfessor_1.10.0.21\Update\PhraseProfessorAutoUpdateClient.exe [2015-07-28] (PhraseProfessor)
Task: {EE14CB9B-49EF-4DB6-A780-39D31DCD182B} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.exe <==== ACHTUNG
Task: {EFEB83B4-0060-48B9-9BD4-5A9F9FA24435} - System32\Tasks\Eomelrieohan => C:\ProgramData\Eomelrieohan\1.0.4.1\aweuvwlo.exe [2015-08-08] ()
Task: {F13E2024-DF97-4A90-933C-37D126508662} - System32\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3 => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3.exe <==== ACHTUNG
Task: {F6C7DFCE-7D94-4EA7-9CFC-D31D76695FAD} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-08-09] (AnyProtect.com) <==== ACHTUNG
Task: {FC3338B8-CA2C-4FC6-95BD-5EB21AB0C5CC} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2015-08-08] (Goobzo) <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-1-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-1-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-11.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-11.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-5_user.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-6.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\945dee8e-cdbf-4566-8737-7ca867199ad7-7.job => C:\Program Files (x86)\Object Browser\945dee8e-cdbf-4566-8737-7ca867199ad7-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\AmiUpdXp.job => C:\Users\West\AppData\Local\26959\Updater.exe <==== ACHTUNG
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ACHTUNG
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ACHTUNG
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-1-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-10_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-10.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-3.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5_user.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7.job => C:\Program Files (x86)\CinemaPlus-3.2cV30.07\bdda1b4b-6ad5-4b86-aea8-418c02f3a5d7-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\CaffeineFix.job => c:\programdata\{0ae495bc-521a-fc02-0ae4-495bc52156f1}\pricelessinstaller.exe <==== ACHTUNG
Task: C:\Windows\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-1-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-11.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-11.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-5_user.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-6.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\dbdd489c-d928-4f1e-83ee-e633b95b7431-7.job => C:\Program Files (x86)\iWebar\dbdd489c-d928-4f1e-83ee-e633b95b7431-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-1-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-10_user.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-10.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-11.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-11.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-5_user.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-5.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-6.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-6.exe <==== ACHTUNG
Task: C:\Windows\Tasks\fe56664a-ffec-4080-bee0-aa32cf23ac94-7.job => C:\Program Files (x86)\Ge-Force\fe56664a-ffec-4080-bee0-aa32cf23ac94-7.exe <==== ACHTUNG
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ACHTUNG
Task: C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job => C:\Program Files (x86)\globalUpdate\Update\globalupdate.exe <==== ACHTUNG
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\LDInRGVXHb5lecHw9IOp1S.job => C:\Users\West\AppData\Roaming\LDInRGVXHb5lecHw9IOp1S.exe <==== ACHTUNG
Task: C:\Windows\Tasks\LVKAHSH1.job => C:\ProgramData\SecurityUtility\SecurityUtility.exe <==== ACHTUNG
Task: C:\Windows\Tasks\Optscan.job => c:\programdata\{04b9ce1a-dfed-852d-04b9-9ce1adfe386b}\hqghumeaylnlf.exe <==== ACHTUNG

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-06-09 14:14 - 2015-02-04 04:21 - 00115400 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-01-17 11:24 - 2012-01-17 11:24 - 00055296 _____ () C:\Windows\SysWOW64\ASGT.exe
2015-08-08 11:57 - 2015-08-08 11:57 - 00112560 _____ () C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe
2015-08-08 20:41 - 2015-08-08 20:41 - 00161792 _____ () C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\hnst3AF2.tmp
2015-08-08 20:41 - 2015-08-08 20:41 - 00209920 _____ () C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\jnsj211A.tmp
2015-08-08 23:50 - 2015-08-08 23:50 - 00155648 _____ () C:\ProgramData\Eomelrieohan\1.0.4.1\aweuvwlo.exe
2015-08-09 01:27 - 2015-07-31 11:33 - 00423056 _____ () C:\Program Files (x86)\Optimizer Pro 3.99\OptProSmartScan.exe
2015-08-09 01:27 - 2015-07-31 11:33 - 00893072 _____ () C:\Program Files (x86)\Optimizer Pro 3.99\OptProReminder.exe
2015-08-09 02:31 - 2015-08-09 02:31 - 00747008 _____ () C:\Program Files (x86)\03000200-1439059283-0500-0006-000700080009\knse7A77.tmp
2015-08-09 01:22 - 2015-08-08 16:46 - 03345040 _____ () C:\Users\West\AppData\Local\gmsd_de_005010055\upgmsd_de_005010055.exe
2015-08-09 01:21 - 2015-08-08 19:12 - 03225088 _____ () C:\Program Files (x86)\ShopperPro\JSDriver\1.42.1.2267\jsdrv.exe
2015-08-09 01:22 - 2015-08-08 16:46 - 03985040 _____ () C:\Program Files (x86)\gmsd_de_005010055\gmsd_de_005010055.exe
2015-07-17 19:34 - 2015-07-17 19:34 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-08-09 00:52 - 2015-08-09 00:52 - 02604544 _____ () c:\Program Files (x86)\CutterProc\CutterProc.dll
2015-08-09 01:27 - 2015-08-09 01:27 - 02683536 _____ () c:\Program Files (x86)\Optimizer Pro 3.99\OptProMon.dll
2015-06-09 14:28 - 2015-06-24 13:37 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-06-08 17:19 - 2015-07-03 18:12 - 00778240 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2015-06-08 17:19 - 2015-07-03 18:12 - 04962816 _____ () C:\Program Files (x86)\Steam\v8.dll
2015-06-08 17:19 - 2015-07-03 18:12 - 01556992 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2015-06-08 17:19 - 2015-07-03 18:12 - 01187840 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2015-06-08 17:19 - 2015-07-24 01:24 - 02410176 _____ () C:\Program Files (x86)\Steam\video.dll
2015-06-08 17:19 - 2014-12-01 23:31 - 02396672 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2015-06-08 17:19 - 2014-12-01 23:31 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2015-06-08 17:19 - 2014-12-01 23:31 - 00479744 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2015-06-08 17:19 - 2014-12-01 23:31 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2015-06-08 17:19 - 2014-12-01 23:31 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2015-06-08 17:19 - 2015-07-24 01:23 - 00703168 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2015-07-22 09:11 - 2015-07-07 22:41 - 00169984 _____ () C:\Program Files (x86)\Steam\bin\openvr_api.dll
2015-06-08 17:19 - 2015-07-03 18:12 - 39553928 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2015-08-09 01:14 - 2015-08-06 11:43 - 58604664 _____ () C:\Program Files (x86)\Opera\31.0.1889.106\opera.dll
2015-08-09 01:14 - 2015-08-06 11:43 - 01780344 _____ () C:\Program Files (x86)\Opera\31.0.1889.106\libglesv2.dll
2015-08-09 01:14 - 2015-08-06 11:43 - 00081528 _____ () C:\Program Files (x86)\Opera\31.0.1889.106\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\acengine => ""="service"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer trusted/restricted ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\aeriagames.com -> hxxps://aeriagames.com
IE trusted site: HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\...\aeriagames.com -> hxxp://aeriagames.com


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2397688693-1529591270-1724079470-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\West\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 52.18.92.32 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)


==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{9BAC4778-185F-421A-9300-E0DB97DEA4E5}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{EF1135A3-0C25-4670-8AEB-816B0A584837}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{ADDCB8AF-44B4-443D-BA03-EA93D6743FA7}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{D6BDABB5-301F-44CC-A5CF-79A229760748}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{685B2757-A985-4E31-9189-5D979C0ECD2D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{C9622C0E-4BE2-450F-AD13-5635BCF8C8D2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{CD673A52-DF3E-4F5B-A777-DBE6A8B7A220}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B8168720-BEA5-4516-804F-36B3EFF32ACB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8D9FE77B-F993-447C-8CB5-A7073241F983}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{EC936801-A717-49D8-9C93-F713838738C8}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{52614054-CCEB-4302-BBD2-B88D8FBEC9ED}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{C49A42A1-B0FF-4802-8750-9A352C7E83B0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C43EBFAC-1FF1-41CE-A469-95A6D77940A0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{440CECB1-E5FB-4389-96F8-78AD0E65FB93}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{6AC0F41E-5E1A-46B8-BE25-9F89DC1EE1BE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{D26E3531-C534-4613-ACA4-E4BCEA5ED76F}C:\users\west\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\west\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{C327D20E-88DE-473A-A926-4BB94D737324}C:\users\west\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\west\appdata\local\akamai\netsession_win.exe
FirewallRules: [{0FDA6FD9-17FD-49B1-98FF-1BD6ED4A90FB}] => (Block) C:\users\west\appdata\local\akamai\netsession_win.exe
FirewallRules: [{07BD2228-6B87-4CC1-8C20-A8E1C2DCF720}] => (Block) C:\users\west\appdata\local\akamai\netsession_win.exe
FirewallRules: [{89F88A5F-BF31-4DE5-8809-11B990C98680}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{CBF49068-436D-49B1-8693-DA10042E8A8B}] => (Allow) C:\ProgramData\NexonEU\NGM\NGM.exe
FirewallRules: [{51B0F1A1-8C95-4BF1-9FBA-CBA957F876B3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{07325B2E-EB95-430E-898D-67F71617F266}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{A59F9156-618C-4C80-8617-CA9A311253E6}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{635BD15E-CD08-4CE2-9E03-396D48FB701B}C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_51\bin\javaw.exe
FirewallRules: [{E22BE0EB-0B50-4688-9843-5AFD4FFE6148}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: wsfd_vt_1_10_0_20
Description: wsfd_vt_1_10_0_20
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer: 
Service: wsfd_vt_1_10_0_20
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (08/09/2015 11:40:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DeskBar.exe, Version: 2.6.4.1753, Zeitstempel: 0x55c66fe0
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fe90d651d8
ID des fehlerhaften Prozesses: 0xe70
Startzeit der fehlerhaften Anwendung: 0xDeskBar.exe0
Pfad der fehlerhaften Anwendung: DeskBar.exe1
Pfad des fehlerhaften Moduls: DeskBar.exe2
Berichtskennung: DeskBar.exe3

Error: (08/09/2015 11:40:29 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: DeskBar.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei DeskBar.InstalledBrowser.SetDefaultBrowser(DeskBar.InstalledBrowser)
   bei DeskBar.InstalledBrowser.GetInstalledBrowsers(Boolean)
   bei DeskBar.AppConfiguration.Validate()
   bei DeskBar.App..ctor()
   bei DeskBar.App.Main(System.String[])

Error: (08/09/2015 11:39:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 11:39:11 AM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail (5320) WindowsMail0: Die Sicherung wurde abgebrochen, weil sie vom Client angehalten wurde, oder weil die Verbindung mit dem Client unterbrochen wurde.

Error: (08/09/2015 01:27:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DeskBar.exe, Version: 2.6.4.1753, Zeitstempel: 0x55c66fe0
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000007fe8ed75058
ID des fehlerhaften Prozesses: 0x16ac
Startzeit der fehlerhaften Anwendung: 0xDeskBar.exe0
Pfad der fehlerhaften Anwendung: DeskBar.exe1
Pfad des fehlerhaften Moduls: DeskBar.exe2
Berichtskennung: DeskBar.exe3

Error: (08/09/2015 01:27:39 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: DeskBar.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei DeskBar.InstalledBrowser.SetDefaultBrowser(DeskBar.InstalledBrowser)
   bei DeskBar.InstalledBrowser.GetInstalledBrowsers(Boolean)
   bei DeskBar.AppConfiguration.Validate()
   bei DeskBar.App..ctor()
   bei DeskBar.App.Main(System.String[])

Error: (08/09/2015 12:51:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 12:22:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 12:18:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddWin32ServiceFiles: Unable to back up image of service Util Box Green since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.

Error: (08/09/2015 12:18:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".

Details:
AddWin32ServiceFiles: Unable to back up image of service Update Box Green since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.
.


Systemfehler:
=============
Error: (08/09/2015 11:38:45 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Der Name "WEST-PC        :20" konnte nicht auf der Schnittstelle mit IP-Adresse 192.168.1.4
registriert werden. Der Computer mit IP-Adresse 192.168.1.3 hat nicht
zugelassen, dass dieser Computer diesen Namen verwendet.

Error: (08/09/2015 11:38:45 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wsfd_vt_1_10_0_20

Error: (08/09/2015 11:38:45 AM) (Source: Server) (EventID: 2505) (User: )
Description: Aufgrund eines doppelten Netzwerknamens konnte zu der Transportschicht \Device\NetBT_Tcpip_{3AE457ED-2821-487E-9A40-0FB754C2FE74} vom Serverdienst nicht gebunden werden. Der Serverdienst konnte nicht gestartet werden.

Error: (08/09/2015 12:49:58 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wsfd_vt_1_10_0_20

Error: (08/09/2015 12:22:07 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (08/09/2015 12:21:20 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wsfd_vt_1_10_0_20

Error: (08/08/2015 11:14:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (08/08/2015 11:14:26 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "globalUpdate Update Service (globalUpdate)" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2

Error: (08/08/2015 11:12:25 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
wsfd_vt_1_10_0_20

Error: (08/08/2015 11:12:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Util Box Green" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%2


Microsoft Office:
=========================
Error: (08/09/2015 11:40:33 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: DeskBar.exe2.6.4.175355c66fe0unknown0.0.0.000000000c0000005000007fe90d651d8e7001d0d2874b401828C:\Users\West\AppData\Local\DeskBar\2.6.4.1753\DeskBar.exeunknownad770787-3e7a-11e5-bd52-e0cb4eb8e199

Error: (08/09/2015 11:40:29 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: DeskBar.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei DeskBar.InstalledBrowser.SetDefaultBrowser(DeskBar.InstalledBrowser)
   bei DeskBar.InstalledBrowser.GetInstalledBrowsers(Boolean)
   bei DeskBar.AppConfiguration.Validate()
   bei DeskBar.App..ctor()
   bei DeskBar.App.Main(System.String[])

Error: (08/09/2015 11:39:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 11:39:11 AM) (Source: ESENT) (EventID: 215) (User: )
Description: WinMail5320WindowsMail0:

Error: (08/09/2015 01:27:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: DeskBar.exe2.6.4.175355c66fe0unknown0.0.0.000000000c0000005000007fe8ed7505816ac01d0d231c9990256C:\Users\West\AppData\Local\DeskBar\2.6.4.1753\DeskBar.exeunknown0f4ca672-3e25-11e5-8dcd-e0cb4eb8e199

Error: (08/09/2015 01:27:39 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: DeskBar.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund eines Ausnahmefehlers beendet.
Ausnahmeinformationen: System.NullReferenceException
Stapel:
   bei DeskBar.InstalledBrowser.SetDefaultBrowser(DeskBar.InstalledBrowser)
   bei DeskBar.InstalledBrowser.GetInstalledBrowsers(Boolean)
   bei DeskBar.AppConfiguration.Validate()
   bei DeskBar.App..ctor()
   bei DeskBar.App.Main(System.String[])

Error: (08/09/2015 12:51:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 12:22:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/09/2015 12:18:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service Util Box Green since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.

Error: (08/09/2015 12:18:10 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service Update Box Green since QueryServiceConfig API failed

System Error:
Das System kann die angegebene Datei nicht finden.


==================== Speicherinformationen =========================== 

Processor: Pentium(R) Dual-Core CPU E5300 @ 2.60GHz
Percentage of memory in use: 84%
Total physical RAM: 2047.24 MB
Available physical RAM: 326.93 MB
Total Virtual: 4094.48 MB
Available Virtual: 1489.46 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:298.53 GB) NTFS
Drive d: (TNBT) (CDROM) (Total:3.76 GB) (Free:0 GB) UDF
Drive e: () (Removable) (Total:7.44 GB) (Free:6.59 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 9DC09DC0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.5 GB) (Disk ID: AE3D93E6)
Partition 1: (Not Active) - (Size=7.5 GB) - (Type=0B)

==================== Ende von log ============================
         

--- --- ---

Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

• Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
• Klicke auf Optionen und wähle als Sprache Deutsch.
• Suche im Uninstallerfeld nach den Programmen:
  
  AnyProtect
  
  CutterProc
  
  GamesDesktop 014.005010055
  
  Ge-Force
  
  globalupdate Helper
  
  istartsurf uninstall
  
  iWebar
  
  Object Browser
  
  Optimizer Pro v3.2
  
  Shopper-Pro
  
  SmartWeb
  
  Software Version Updater
  
  YTDownloader
  
  
  
• Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
• Wähle anschließend den Modus "Moderat" aus.
  
• Reste löschen:
  Klicke auf dann auf und dann auf .

 

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

• WICHTIG: Speichere Combofix auf deinem Desktop.
• Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
• Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
• Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
• Wenn Combofix fertig ist, wird es ein Logfile erstellen.
• Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten

Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.

starte den Rechner einfach neu. Dies sollte das Problem beheben.